ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

CraftClose

v0.1.0

AI-powered Minecraft server monitoring with crash detection, auto-restart, and smart alerts. Use when: monitoring Minecraft servers, diagnosing crashes, sett...

0· 60·0 current·0 all-time
byBejie Paulo Aclao@ginhooser-cyber
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name/description, required binary 'craftclose', and the npm install spec are coherent for a Minecraft monitoring CLI. The skill declares the craftclose CLI as required and the install uses the craftclose npm package — reasonable for the stated purpose. Minor mismatch: SKILL.md explicitly references a Gemini API key in examples but the registry metadata does not declare a primaryEnv or required envs (so the skill's metadata is incomplete/underspecified).
Instruction Scope
SKILL.md contains concrete CLI usage and config examples for monitoring, crash analysis, and management (SSH, RCON, Pterodactyl). The instructions do not themselves instruct arbitrary file exfiltration, but configuration examples include sensitive paths and secrets (e.g., ~/.ssh/id_rsa, rcon password, pterodactyl api_key, telegram bot_token, GEMINI_API_KEY). Running the CLI with such config will cause the tool to read local keys, connect to remote services, and access server logs — expected for the purpose, but the guidance does not explicitly warn about secure handling of these secrets or where the tool sends AI analysis results (it names Gemini but doesn't define how data is transmitted/stored).
Install Mechanism
Install uses npm (npm install -g craftclose) to provide the craftclose binary — an expected and traceable mechanism for a Node.js CLI. This is moderate-risk in general (you must trust the npm package source) but is proportional to the functionality and consistent with the skill's purpose. No downloads from arbitrary URLs or archive extraction are specified.
!
Credentials
The skill metadata lists no required env vars, yet the SKILL.md config/example expects multiple sensitive secrets (GEMINI_API_KEY, RCON password, Pterodactyl api_key, Telegram bot_token, Discord webhook, and SSH key path). Those credentials are necessary for full functionality but are not declared in the skill metadata's requires/primaryEnv fields. This lack of declaration obscures the credential surface and prevents upfront review of what secrets will be used. That mismatch is a security concern.
!
Persistence & Privilege
The skill is not always-on and is user-invocable (normal), but it is designed to run continuous monitoring and to perform management actions (auto-restart via SSH/RCON/Pterodactyl). If invoked autonomously or run with supplied credentials, it can perform stateful actions on servers and create local state (SQLite history). Combined with the missing declaration of sensitive env vars, this increases the potential blast radius and warrants caution before granting credentials or allowing autonomous runs.
What to consider before installing
This skill appears to be what it says (a CLI monitor) but the runtime instructions expect many sensitive credentials that are not declared in the skill metadata. Before installing or running: (1) inspect the craftclose npm package and its source (verify publisher, review package code) to ensure it handles secrets and remote connections safely; (2) do not paste secrets into shared prompts — prefer environment variables or restricted config files with tight filesystem permissions; (3) if possible run the CLI in a sandbox or test environment first (use least-privilege API keys, limit Pterodactyl API scope, rotate keys after testing); (4) confirm where AI analysis data is sent/stored (Gemini provider) and whether logs or crash dumps containing sensitive data are transmitted; (5) only allow autonomous invocation if you trust the package and have restricted credentials — otherwise run it manually.

Like a lobster shell, security has layers — review code before you run it.

latestvk970ahwqcjamhhbgyvx82cxphd83bav0

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔧 Clawdis
Binscraftclose

Install

Install CraftClose CLI (npm)
Bins: craftclose
npm i -g craftclose

Comments